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AMENDMENTS TO THE CLAIMS 


What is claimed is: 

1 . (currently amended) A communication network, comprising: 

(A) local communication links, 

(B) a plurality of separately located central office switching systems interconnected via 

trunk circuits for selectively providing switched call connections between at least 
two of the local communication links in response to predetermined control data 
messages, 

(C) a signaling communication system for two-way communications of said control data 

messages between said central office switching systems, said signaling 
communication system interconnecting the central office switching systems; 

(D) a signaling gateway, separate from the central office switching systems and 

connected to said signaling communications system, said signaling gateway 
including an interface connected to a remote communications network and 
configured to exchange said control data messages between said remote 
communication network and said central office switching systems by way of said 
signaling communication system, and 

(E) a signaling system security monitor, separate from the central office switching 

systems, said signaling system security configured to evaluate an encrypted 
portion of said control data messages including digital time stamps so as to 
authenticate corresponding ones of said control messages and, in response, 
determine if said control data messages are proper including timely and properly 


sequenced . 


2. 


(original) The communications network according to claim 1 wherein said signaling 
system security monitor comprises a certification agent configured to exchange and 
maintain encryption key certificates. 
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3. (currently amended) The communications network according to claim 1 wherein 
said signaling system security monitor is configured to issue and decrypt said digital 
time stamps. 

4. (original) The communications network according to claim 1 wherein said signaling 
system security monitor comprises a digital certificate issuing authority. 

5. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to selectively communicate said control data 
messages between said signaling gateway and said signaling communication system 
in response to said encrypted portions of said control data messages. 

6. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to selectively enable and inhibit said signaling 
gateway from exchanging said control data messages between said remote 
communication network and said signaling communication system in response to 
said encrypted portions of said control data messages. 

7. (original) The communications network according to claim 1 wherein said signaling 
system security monitor includes a memory storing states of respective ones of said 
central office switching systems, said processor additionally responsive to said states 
for determining if said control messages are proper. 

8. (original) The communications network according to claim 1 wherein said signaling 
gateway is configured to convert SS7 type messages to another packet data format. 

9. (original) The communications network according to claim 10 wherein the other 
packet data format is an Internet Protocol (IP) format. 

10. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to monitor at least one of (i) a destination point 
code, (ii) an originating point code, and (iii) a service indicator. 
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1 1 (original) The communications network according to claim 1 wherein said signaling 

system security monitor is configured to monitor at least one of SCCP, ISUP, TCAP, 
and AIN messages. 

12. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to monitor calling and called party address 
parameters contained in SCCP message portions of said control data messages and 
determine if said monitor calling and called party address parameters are consistent 
with an authorized signaling relationship. 

1 3. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to monitor calling and called party address 
parameters contained in an SCCP message portion of said control data messages. 

14. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to monitor origination and designation point 
codes and calling and called party address parameters contained in a TCAP message 
portion of said control data messages. 

15. (original) The communications network according to claim 1 wherein said signaling 
system security monitor is configured to monitor origination and destination point 
codes parameters contained in a TCAP message portion of said control data 
messages and determine if a particular destination point code is authorized to send a 
particular TCAP message to a particular destination point code. 

1 6. (original) The communications network according to claim 1 wherein said signaling 
system security monitor includes a memory storing a state of said communications 
network. 

17. (previously presented) The communications network according to claim 1 wherein 
said signaling system security monitor includes a memory storing permissible states 
of said communications network and rules for transitioning from each of said 
permissible states to others of said permissible states. 
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1 8. (original) The communications network according to claim 1 wherein said signaling 
system security monitor includes a memory storing data relating call progress status 
with respective sets of control messages appropriate to initiate a next action 
consistent with a particular service. 

19. (previously presented) The communications network according to claim 1 wherein 
said signaling system security monitor includes a memory storing a plurality of 
message templates corresponding to approved ones of said control data messages. 

20. (original) The communications network according to claim 19 wherein said plurality 
of message templates are associated with a plurality of service providers.. 

21. (original) The communications network according to claim 20 wherein said 
signaling system security monitor associates each of said control data messages with 
a corresponding one of said service providers and selects one of said message 
templates in response to the corresponding one of said service providers. 

22. (currently amended) The communications network according to claim [[1]] 19 
wherein said signaling system security monitor includes a memory storing sets of 
templates, each of said sets corresponding to control messages appropriate to 
particular call progress flow. 

23. (original) The communications network according to claim 22 wherein said 
templates define message formats, parameters and values associated with control 
message types selected from SCCP, ISUP, TCAP and AIN type messages. 

24. (original) The communications network according to claim 22 wherein said 
signaling system security monitor is configured to select said sets of templates in 
response to service provider authorization data associated with respective ones of 
said control data messages. 

25. (currently amended) A method of securely interfacing control links of respective 
communication networks, comprising the steps of: 
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exchanging control data messages between a remote communication network and a local 
signaling communication system; 

decrypting a certificate portion of said control messages including a time stamp so as to 
authenticate origination point code information based on said time stamp so as to 
determine control messa ge timeliness and sequencing; 

selectively communicating, in response to said decrypting step, control data messages 
between central office switching systems; and 

selectively providing switched call connections between at least two of the local 
communication links in response to predetermined control data messages. 

26. (original) The method according to claim 25 further comprising a step of converting 
a protocol of said control data messages between a protocol of said remote 

communication network and a protocol of said local signaling communication 

system. 

27. (original) The method according to claim 26 wherein one of said protocols is an SS7 
compliant message protocol. 

28. (original) The method according to claim 27 wherein one of said protocols is an 
Internet Protocol (IP) format. 

29. (original) The method according to claim 25 further comprising a step of monitoring 
of calling and called party address parameters contained in SCCP message portions 
of said control data messages. 

30. (original) The method according to claim 29 wherein said monitoring step includes 
determining if said calling and called party address parameters are consistent with an 
authorized signaling relationship. 

31 . (original) The method according to claim 25 further comprising a step of monitoring 
origination and designation point codes and calling and called party address 
parameters contained in a TCAP message portion of said control data messages. 
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32. (original) The method according to claim 3 1 wherein said monitoring step includes 
monitoring origination and destination point codes parameters contained in a TCAP 
message portion of said control data messages and determining if a particular 
destination point code is authorized to send a particular TCAP message to a 
particular destination point code. 

33. (original) The method according to claim 25 further comprising a step of storing a 
state of said communications network. 

34. (original) The method according to claim 25 further comprising a step of storing (i) 
permissible states of said communications network and (ii) rules for transitioning 
from each of said permissible states to others of said permissible states.. 

35. (original) The method according to claim 25 further comprising a step of storing 
data relating call progress status with respective sets of control messages appropriate 
to initiate a next action consistent with a particular service. 

36. (original) The method according to claim 25. further comprising a step of storing a 
plurality of message templates. 

37. (original) The method according to claim 36 wherein said plurality of message 
templates are associated with a plurality of service providers. 

38. (original) The method according to claim 37 further comprising steps of: 

associating each of said control data messages with a corresponding one of said service 
providers; and 

selecting one of said message templates in response to the corresponding one of said 
service providers. 
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